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DETAILED ACTION 

1 . The Amendment, and remarks therein, received on 12/12/05 have been entered and 
carefully considered. 

2. Applicant canceled claim 21 and amended claim language of claims 1 , 16, 22 and 
26. 

3. The text of those sections of Title 35, U.S. Code not included in this action can be 
found in a prior office action. 

Response to Amendment 

4. Applicant's arguments directed towards the rejection of the amended claims have 
been carefully considered and found persuasive. 

5. Although, the current amendment did not introduce any new significant limitations 
the newly introduced limitations in claims 1-16, 20, 22, 25-26 and 30 introduced on 
7/1 1/05 necessitated a new search that resulted in the newly discovered prior art. 

6. New grounds of rejection based on the newly discovered prior art follow below. 

7. Claims 1-20, 22-26 and 30 have been examined. 

Claim Rejections - 35 USC § 102 

8. Claims 1, 13, 16, 18 and 30 are rejected under 35 U.S.C. 102(b) as being 
anticipated by Wu et ai (U.S. Patent No, 5774551). 

9. As per claims 1,16 and 30 Wu etal. teach employing a component implemented on 
a computer readable medium to accept an authentication challenge and passing a 
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first data associated with the authentication challenge to an authentication manager 
(Wu et ai, Fig. 1, col. 9 lines 47'Col. 56). Wu et al. teach that the authentication 
manager processes the first data into second data of a first type appropriate for a 
first authentication module, and that the authentication manager processes the first 
data into second data of a second type appropriate for a second authentication 
module, the first and second authentication modules having different requirements 
for the second data and passing at least one of the second data associated with the 
authentication challenge to one or more authentication modules, where the 
authentication modules are registered with the authentication manager, and where 
the authentication modules are operatively connected to the authentication manager 
(Wu eta!., col. 9 lines 63-67). The authentication modules are registered with the 
authentication manager (Wu et al., col. 9 lines 52-56) and produce one or more 
responses to the authentication challenge (Wu etai, coL 9 lines 67-col. 10 line 2). 
10. As per claims 13 and 18 Wu etal. teach that the authentication challenge is 
generated by at least one of a Kerberos authentication system, a digest 
authentication system, a Basic authentication system, an NTLM authentication 
system and a certificate based authentication system (Wu et al., col. 2 lines 1-43) 
and it is a multipart authentication challenge (Wu etal., col. 9 lines 65-67). 



Claim Rejections - 35 USC § 103 
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1 1 . Claims 2-7, 1 7, 22-23 and 26 are rejected under 35 U.S.C. 1 03(a) as being 
unpatentable over Wu et ai (U.S. Patent No, 5774551) in view of Van Hoff (U.S. 
Patent No. 5822539) and Travis et al. U.S. Patent No. 6269367. 

12. As per claims 3-5 and 7 and 23 Wu et aL teach multipart authentication generated 
by at least one of a Kerberos authentication system, a digest authentication system, 
a Basic authentication system, an NTLM authentication system and a certificate 
based authentication system and producing a set of third data as discussed above 
and teach that the authentication modules employ one or more services (Wu et al., 
col. 21 lines 10-23). 

13. As per claims 2, 17 l/l/u a/, do not explicitly teach a cache adapted to store data 
(e.g. one or more third data related to responding to the authentication challenge). 

14. Van Hoff teach utilizing cache memory (Van Hoff, col. 1 lines 52-55). It would have 
been obvious to one of ordinary skill in the art at the time of applicant's invention to 
utilize cache in Wu et al.'s invention as taught by Van Hoff given a benefit of faster 
response to subsequent requests. 

15. Furthermore, claims 6, 22 and 26 essentially refer to a pre-step of a previously 
discussed authentication, wherein instead of receiving, processing and responding 
to data associated with the communication challenge. The test is conducted and 
wherein test data received by the authentication manager triggers "pre- 
authentication procedures" that are essentially the same as the authentication 
procedures. Although, Wu et al. do not explicitly discuss test procedures, 
conducting tests prior to implementation of a system is old and well-known practice 
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as shown by Travis et al. (col. 2 lines 20-41) giving a benefit of addressing and 
avoiding potential problems prior to the system's live implementation. 

16. Claims 8-12, 14-15, 19-20 and 24-25 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Wu et al. (U.S. Patent No. 5774551) in view of Van Hoff(U.S. 
Patent No. 5822539) and Travis etal. U.S. Patent No. 6269367 and further in view 
of Object Oriented Programming as illustrated by Burroughs et al (U.S. Patent No. 
5878411), Kumar etal. (U.S. Patent No. 6343287), Microsoft Press (Microsoft Press, 
"Computer Dictionary, 3"^ edition, ISBN: 157231446X, 1997) and New Rider (New 
Rider, "Windows 98 Professional Reference", 
http://cma.zdnet.com/bookMin98prfref/ch1 5/ch1 5.htm). 

17. As per claims 8 and 10-1 1 Wu et al.'s invention is object-oriented system that uses a 
class factory (Wu et al., col. 12 lines 4-19, 39-47, col. 13 lines 4-11). However, Wu 
et al. do not explicitly teach instantiating one or more authentication objects based, 
at least in part, on the first data, and authentication objects callable by the 
authentication manager, and a data store that holds information associated with 
selectively instantiating the one or more authentication objects that can be callable 
by the authentication manager. However, these concepts are well known in the art. 
For example, Burroughs et al. disclose fundamentals of Object Oriented 
Programming: 

"A fundamental concept in OOP is the class. A class is a template or prototype that 
defines a type of object. A programmer may define a class by writing a section of 
code known as a class definition. An object is an instance of a class. An object is 
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created or instantiated at run-time, i.e., when the computer executes a statement in 
the program calling for the instantiation of an object of a specified class. An object 
may include attributes or data as well as functions or methods. The class definition 
specifies the attributes and methods. The attributes are represented in an object by 
the values of instance variables" (Burroughs et aL, col. 5 lines 15-25). 

18. Another example is provided by Kumar et al. who's invention involves 

"a mechanism, method, and computer program product for linking a profile service 
instance to a plurality of external data stores. External data store profile that "is 
created in the profile service that names the connector class. An external data store 
reference object is created in the profile service instance that identifies the external 
data store profile and a number of parameters that specify particular data desired 
from the external data store. A profile within the profile service instance includes an 
attribute that names the data store reference object. When the attribute is evaluated, 
the data store reference object is instantiated, optionally using parameters specified 
at runtime, and passed as a parameter to an instance of the data store connector 
class identified by the external data store profile" (Kumar et al., col. 5 lines 10-32). 

19. In light of the above references it would have been obvious to one of ordinary skill in 
the art at the time of applicant's to register objects with the class factory and with the 
data store instantiating one or more authentication objects based, at least in part, on 
the first data, and authentication objects callable by the authentication manager, and 
a data store that holds information associated with selectively instantiating the one 
or more authentication objects callable by the authentication manager. One of 
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ordinary skill in art at the time of applicant's invention would have employed such a 
modification to conform with and take a full advantage of object oriented design, as 
well as to ensure that the objects are known and utilized by the system. 

20. As per claims 12 and 25 Wu et al. do not explicitly teach that the applications do not 
have to be receded or recompiled in order to employ the newly registered object" is 
acknowledged. 

21 . However, as illustrated by Microsoft Press (dynamic link library, pg. 166) as well as 
the New Rider's "Windows 98 Professional Reference" reference (New Rider, 
"Understanding HKEY_CLASSES_ROOr section) disclose application that does 
not have to be receded or recompiled to employ the registered objects were well 
known in the art and it would have been obvious to one of ordinary skill in the art at 
the time of applicant's invention to incorporate such applications in order to speed up 
the applications' execution. 

22. As per claims 19-20 and 24 Wu etal. teach that one or more authentication modules 
are "plugged" into and communicate with "pluggable account management" as 
objects (e.g. passing parameters, Fig. 1 and col. 13 line 53 col. 14 line 35) and it 
would have been obvious to one of ordinary skill in the art at the time of applicant's 
invention to keep updating the authentication solution disclosed by Wu et al. by 
extending available modules including additional authentication schemes modules. 
One of ordinary skill in the art would have been motivated to perform such a 
modification in order to accommodate new authentication protocols. 
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23. As per claims 14-15 Wu et al/s distributed authentication includes the computer 
facilitating the authentication, terminal and remote computers (Wu etai Fig. 1), 

Conclusion 

The prior art made of record and not relied upon is considered pertinent to 
applicant's disclosure: Jones et al. (U.S. Patent No.' 5655077). 

THIS ACTION IS MADE FINAL. Applicant is reminded of the extension of time 
policy as set forth in 37 CFR 1 . 1 36(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1.136(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the date of this final action. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Peter Poltorak whose telephone number is (571)272- 
3840. The examiner can normally be reached Monday through Thursday from 9:00 
a.m. to 4:00 p.m. and alternate Fridays from 9:00 a.m. to 3:30 p.m 
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If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Gregory Morse can be reached on (571) 272-3838. The fax phone number 
for the organization where this application or proceeding is assigned is (571) 273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 





Vjigna ure 




SUPERVISORY PATENT EXAMINER 
TECHNOLOGY CENTER 2100 



